Vulnerability — CVE-2023-4724

CVE-2023-4724

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-4724
Description:: The Export any WordPress data to XML/CSV WordPress plugin before 1.4.0, WP All Export Pro WordPress plugin before 1.8.6 does not validate and sanitise the `wp_query` parameter which allows an attacker to run arbitrary command on the remote server
Last updated date:: 12/21/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/21/2023
Reference url to background: https://wpscan.com/vulnerability/48820f1d-45cb-4f1f-990d-d132bfc5536f